Lucene search
K

4 matches found

NVD
NVD
added 2025/01/09 8:15 a.m.13 views

CVE-2024-43660

The CGI script .sh can be used to download any file on the filesystem. This issue affects Iocharger firmware for AC model chargers beforeversion 24120701. Likelihood: High, but credentials required. Impact: Critical – The script can be used to download any file on the filesystem, including...

7.5CVSS0.00572EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/09 7:56 a.m.8 views

CVE-2024-43660 Arbitrary file download using <redacted>.sh

The CGI script .sh can be used to download any file on the filesystem. This issue affects Iocharger firmware for AC model chargers beforeversion 24120701. Likelihood: High, but credentials required. Impact: Critical – The script can be used to download any file on the filesystem, including...

7.1CVSS7.5AI score0.00572EPSS
Exploits0References3
CVE
CVE
added 2025/01/09 7:56 a.m.50 views

CVE-2024-43660

The CVE-2024-43660 issue affects Iocharger AC model chargers running firmware before 24120701. A CGI script (.sh) can be abused to download arbitrary files from the device filesystem (e.g., /etc/shadow, script source, binaries, config files). Attack is network-exposed and can be executed with low...

7.5CVSS7.1AI score0.00572EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/09 7:56 a.m.16 views

CVE-2024-43660 Arbitrary file download using <redacted>.sh

The CGI script .sh can be used to download any file on the filesystem. This issue affects Iocharger firmware for AC model chargers beforeversion 24120701. Likelihood: High, but credentials required. Impact: Critical – The script can be used to download any file on the filesystem, including...

7.1CVSS0.00572EPSS
Exploits0References3
Rows per page
Query Builder